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(54) A system amd method for authentication of electronic messages sent to a network server 



(57) A system and a method for authenticating elec- 
tronic messages sent to a network server (1 32) to pre- 
vent the delivery of any unwanted, unsolicited or unau- 
thorized electronic messages. The system of the 
present invention includes a messaging client (108) at 
a remote location and a token module (332) located on 
the network server (132). Both the messaging client 
(1 08) and token module (332) separately and independ- 
ently generate identical tickets. One of the tickets is at- 
tached by the messaging client (108) to an electronic 
message (172) and allows one electronic message to 
be sent through the network server (1 32) . The other tick- 



et is stored in a valid ticket database. When the network 
server (132) receives a request to send an electronic 
message, the server (132) uses a message module 
(340) to authenticate the message. Authentication oc- 
curs if the ticket attached to the electronic message 
(172) matches a stored ticket in the valid ticket data- 
base. An authenticated message (180) is sent to a re- 
ceiving client (140), and a non-authenticated message 
(480) is not delivered. The present invention also in- 
cludes a method for authenticating an electronic mes- 
sage sent by a messaging client (1 08) through a network 
server (132) using the system of the present invention. 
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Description 

FIELD OF THE INVENTION 

[0001] The oresent invention relates in genera! to 
electronic messaging and more particularly to a system 
and a method for authenticating electronic messages 
sent to a network server to prevent the delivery of any 
unwanted, unsolicited or unauthorized electronic mes- 
sages. 

BACKGROUND OF THE INVENTION 

[0002] Electronic messaging (such as electronic mail 
or "e-mail") is a popular and widely used form of com- 
munication. In general, an electronic message is gener- 
ated by a messaging machine or client (such as an e- 
mail client computer) connected to a network, sent to a 
network server and delivered over the network to a re- 
ceiving client. A typical way for the messaging client and 
the network server to be connected is over a public wide- 
area network (such as the Internet). For example, to 
send an e-mail a user may dial their local Internet serv- 
ice provider (ISP) and connect to a mail server, which 
sends the e-mail to a recipient across the Internet. 
[0003] One problem, however, with providing a net- 
work server that can be accessed by the general public 
is that the server can be easily accessed by unscrupu- 
lous persons to send unwanted, unsolicited or unauthor- 
ized messages (herein referred to as unsolicited mes- 
sages). These unsolicited messages, which are also 
known as unsolicited commercial e-mail (UCE), unso- 
licited bulk e-mail (UBE) and "spam", are messages 
that, regardless of their content, are sent to recipients 
who have not specifically requested and do not want to 
receive the messages. Unsolicited messages are gen- 
erally commercial in nature and are typically sent by per- 
sons who have purchased or generated a list of network 
addresses (such as e-mail addresses) for the purpose 
of advertising. 

[0004] There are several techniques currently availa- 
ble for preventing the sending of unsolicited messages 
through a public network server. One technique involves 
a user who is sending a message entering a password 
in order to gain access to the network server. A problem 
with this technique is that a user is required to choose 
and remember a password, which usually must be 
changed at regular and frequent intervals. Further, the 
user's messaging machine must be configured for the 
password. Because the password may be forgotten or 
stolen and the configuration of the user's messaging 
machine may be difficult for some users, the password 
technique can lead to considerable user confusion and 
frustration. Another technique protects the network 
server behind a "firewall", which is a system that pre- 
vents the message server from being accessed by un- 
authorized persons. However, a problem with this tech- 
nique is that a firewall prevents most users from even 



connecting to the message server and thus limits the 
availability of the message server to the general public. 
Other techniques encrypt the entire message when the 
message is sent over the network so that only encrypted 

5 message are accepted by the network server. The dis- 
advantage, however with this technique is that encryp- 
tion and decryption of the entire message uses valuable 
system resources and reduces system speed. 
[0005] Therefore, there is needed is an efficient, ef- 

10 fective and simple system and method that prevents the 
delivery of unsolicited messages sent to a message 
server that can be accessed by the general public. This 
system and method would not refy on a user password 
to access the message server thus eliminating the need 

15 to remember a password and configure the password 
on the user's messaging machine. In addition, the sys- 
tem and method would not use a firewall technique and 
would allow members of the general public having a le- 
gitimate need access to the mail server. 

20 

SUMMARY OF THE INVENTION 

[0006] To overcome the limitations in the prior art as 
desc-ibed above, and to overcome other limitations that 

25 will become apparent upon reading and understanding 
the present specification, the present invention is em- 
bodied in a system and a method for authenticating elec- 
tronic messages sent to a network server to prevent the 
delivery of any unwanted, unsolicited or unauthorized 

30 electronic messages. The present invention provides an 
efficient, effective and simple way to prevent the delivery 
of unsolicited messages sent to a public message serv- 
er. The present invention does not require passwords, 
firewalls or encryption of the message for security. In- 

35 stead, a ticket is attached to a message that allows au- 
thentication by the network server anc permits the mes- 
sage to be delivered. 

[0007] The message authentication system of the 
present invention includes a messaging client at a re- 

40 mote location and a token module located on a network 
server. Both the messaging client and token module 
separately and independently generate identical tickets. 
One of the tickets is attached by the messaging client 
to an electronic message and allows one electronic 

45 message to be sent through the network server. The oth- 
er ticket is stored in a valid ticket database. When the 
network server receives a request to send an electronic 
message, the server uses a message module to authen- 
ticate the message. Authentication occurs if the ticket 

so attached to the electronic message matches a stored 
ticket in the valid ticket database. An authenticated mes- 
sage is sent to a receiving client, and a non-authenticat- 
ed message is not delivered. 

[0008] The present invention also embodied in a 
55 method for authenticating an electronic message sent 
through a network server. The method includes prepar- 
ing the electronic message for authentication by receiv- 
ing a token from the network server, generating a first 
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ticket at a remote location and attaching the first ticket 
to the electronic message. In addition, an identical sec- 
ond ticket is generated, using the same token and algo- 
rithmic manipulation, on the network server. The au- 
thentication process occurs when the message module 5 
of the network server receives an electronic message 
over the network. The message is examined to deter- 
mine if there is a ticket attached, and, if so, the ticket is 
compared to tickets in the valid ticket database. If the 
tickets match, the electronic message is authenticated 
and delivered. Otherwise, the message is not delivered. 
[0009] Other aspects and advantages of the present 
invention as well as a more complete understanding 
thereof will become apparent from the following detailed 
description, taken in conjunction with the accompanying 
drawings, illustrating by way of example the principles 
of the invention. Moreover, it is intended that the scope 
of the invention be limited by the claims and not by the 
preceding summary or the following detailed descrip- 
tion. 

BRIEF DESCRIPTION OF THE DRAWINGS 

[0010] The present invention can be further under- 
stood by reference to the following description and at- 
tached drawings that illustrate the preferred embodi- 
ment. Other features and advantages will be apparent 
from the following detailed description of the preferred 
embodiment, taken in conjunction with the accompany- 
ing drawings, which illustrate, by way of example, the 
principles of the present invention. 
[001 1 ] Referring now to the drawings in which like ref- 
erence numbers represent corresponding parts 
throughout: 

FIG. 1 is an overall block diagram of an electronic 
messaging system incorporating the present inven- 
tion. 

FIG. 2 is a block diagram illustrating an apparatus 
for carrying out the present invention. 40 
FIG. 3. is a block diagram illustrating the messaging 
client, network server and receiving client of the 
present invention. 

FIG. 4 is a detailed flow diagram illustrating the op- 
eration of the present invention. 45 

DETAILED DESCRIPTION OF THE PREFERRED 
EMBODIMENTS 

[0012] In the following description of the invention, so 
reference is made to the accompanying drawings, which 
form a part thereof, and in which is shown by way of 
illustration a specific example whereby the invention 
may be practiced. It is to be understood that other em- 
bodiments may be utilized and structural changes may ss 
be made without departing from the scope of the present 
invention. 



I. Introduction 

[0013] Unsolicited commercial electronic messages 
are a widespread problem that bother and annoy users 
of public networks. Accordingly, eliminating the delivery 
of such electronic messages is quite appealing for both 
users and administrators of public networks. The 
present invention provides a simple, effective and effi- 
cient way to ensure the only authorized messages are 
delivered through a network server. The present inven- 
tion does not rely on passwords (that can be lost or sto- 
len and require users to configure their systems), fire- 
walls (that isolate the network server) or encryption of 
the entire message (that can burden system resources). 
Instead, the present invention provides an authentica- 
tion system and process whereby only electronic mes- 
sages that have a valid ticket attached may be sent 
through the network server. 

[001 4] In order to obtain a valid ticket to send an elec- 
tronic message through the network server, a messag- 
ing client must first request a token from the network 
server. This token is a unique value that is randomly 
generated to avoid duplication by others. The token and 
an algorithmic manipulation are used to generate two 
identical tickets: one on the messaging client and one 
on the network server. Both of these tickets are gener- 
ated separately and independently of each other. Be- 
cause each ticket is generated independently of the oth- 
er, neither ticket needs to be transmitted over the net- 
work. This alleviates the possibility of a ticket being in- 
tercepted by others. A first ticket is attached by the mes- 
saging client to the electronic message to be sent, and 
a second ticket is stored on the network server in a valid 
ticket database. 

[0015] The authentication process occurs each time 
the network server receives an electronic message for 
delivery. The network server determines whether the 
electronic message has a ticket attached. If not, then 
the message is not delivered. Otherwise, the attached 
ticket is compared to tickets within the valid ticket data- 
base. If the attached ticket matches a ticket in the valid 
ticket database, then the electronic message is authen- 
ticated and the message is delivered to the addressee. 
The attached ticket is removed from the message and 
its corresponding ticket is removed from the valid ticket 
database. If no matches are found for the attached ticket 
then the ticket is considered fraudulent or void and the 
message is not delivered. 

[0016] Security in the present invention is accom- 
plished in several ways. First, a unique token is random- 
ly generated to ensure the token cannot be guessed or 
duplicated by others. Second, separate and independ- 
ent generation of identical tickets using the same algo- 
rithmic manipulations and using the unique token pre- 
vent others from creating their own ticket. Further, be- 
cause the ticket by itself is not sent over the network, 
others are prevented from stealing the ticket off the net- 
work. Finally, a preferred embodiment also uses a se- 
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curity value that is known only to the messaging client 
and the network server. This security value is used with 
the token when generating the tickets and further en- 
sures that the ticket cannot be duplicated or stolen. 

II. General Overview 

[0017] FIG. 1 is a block diagram of an electronic mes- 
saging system that incorporates the present invention. 
In general, the electronic messaging system 100 in- 
cludes a messaging client 108 that uses a messaging 
machine 1 1 6 (such as a computer) to generate and send 
an electronic message over a network 124, to a network 
server 132, back over the network 124 and to a receiving 
client 140 at a specified network address. The network 
124 may be, for example, a cable connecting the mes- 
saging client 1 08 and the receiving client 1 40 to the net- 
work server 132 via digital or analog telephone lines, 
wireless communication (such as infrared and satellite) 
or other forms of communication. Preferably, the net- 
work 1 24 is a network that is used by the general public, 
such as a wide area network (WAN), but may also be a 
local area network (LAN). 

[0018] The messaging client 108 uses a messaging 
machine 1 1 6 that is any device that permits connection 
to the network 124 and is capable of generating and 
transmitting an electronic message over the network 
124 to the network server 132. For instance, the mes- 
saging machine 1 1 6 may be a desktop or notebook com- 
puter having a modem and an e-mail application resid- 
ing on the computer. Further, the messaging machine 
1 1 6 may be a message appliance that allows a user to 
place a document in a document feeder, select a net- 
work address, have the message appliance connect to 
the network server 1 32 over the network 1 24 and deliver 
the message to the receiving client 140. 
[0019] The network server 132 manages the flow of 
information over the network 1 24 and includes a mes- 
sage authentication system 148. The message authen- 
tication system 148 authenticates the electronic mes- 
sage and determines whether the electronic message 
should be delivered to the receiving client 140. As dis- 
cussed further below, the message authentication sys- 
tem 148 includes several modules. Preferably, these 
modules are combined to reside the network server 1 32 
but, alternatively, may be separated and located on dif- 
ferent network servers. 

[0020] The electronic messaging system 100 of the 
present invention operates by initially sending a token 
request 1 56 from the messaging client 1 08 over the net- 
work 124 to the network server 132. The message au- 
thentication system 148 on the network server 132 re- 
turns a token 164 over the network 124 to the messaging 
client 108. As discussed further below, the messaging 
client then generates a ticket and combines the ticket 
with a desired electronic message for transmission. The 
messaging client 108 transmits the electronic message 
and ticket 1 72 over the network 124 to the message au- 



thentication system 148 for authentication. If the mes- 
sage authentication system 148 determines that the 
electronic message should be delivered, an authenticat- 
ed electronic message 1 80 is transmitted over the net- 

5 work 124 to the receiving client 140. 

[0021] Similarto the messaging client 108, the receiv- 
ing client 1 40 uses a receiving machine 1 88 that may 
be any device that permits connection to the network 
124 and is capable of receiving the authenticated elec- 

10 tronic message 180. For example, the receiving 
machinel 88 may be a desktop or notebook computer 
having a modem and an e-mail application residing on 
the computer or a message appliance. 
[0022] FIG. 2 is a block diagram illustrating an appa- 

15 ratus for carrying out the present invention. The follow- 
ing discussion provides a general description of a suit- 
able computing environment in which the present inven- 
tion may be implemented. The invention will be de- 
scribed in the general context of computer-executable 

20 instructions (such as program modules) being executed 
by a computer. 

[0023] As shown in FIG. 2, an exemplary system for 
implementing the present invention includes a general- 
purpose computing device in the form of a conventional 

25 computer 200. The computer 200 includes a central 
processing unit 203, a system memory 206 and a sys- 
tem bus 209. The system bus 209, which couples vari- 
ous system components including the system memory 
206 to the central processing unit 203, may be any of 

30 several types of bus structures including memory bus 
or memory controller, a peripheral bus and a local bus 
using any of a variety of bus architectures. 
[0024] The system memory 206 includes computer 
storage media in the form of read-only memory (ROM) 

35 212 and random access memory (RAM) 215. A basic 
input/output system (BIOS) 218 is stored in the ROM 
212 and contains the basic routines that help transfer 
information between components of the computer 200, 
such as during start-up. 

40 [0025] The computer 200 also includes input/output 
(I/O) devices 221 for interfacing with the outside envi- 
ronment. I/O devices 221 may include storage devices 
224 that store, for instance, data and program modules. 
The storage devices 224 include, for example, a hard 

45 disk drive, for reading from and writing to a hard disk, a 
magnetic disk drive, for reading from and writing to a 
removable magnetic disk, and an optical disk drive, for 
reading from and writing to a removable optical disk 
(such as : for example, a CD-ROM or othertype of optica! 

so media). These drives and their associated computer- 
readable media provide storage of computer-readable 
instructions, data structures, program modules and oth- 
er data for the computer 200. Although the exemplary 
environment described herein employs a hard disk, a 

55 removable magnetic disk and a removable optical disk, 
it should be appreciated that those skilled in the art 
would recognize that other types of computer-readable 
media can store data that can be accessed by the com- 
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puter 200. Thus, computer-readable media may be any 
available media that is accessible by the computer 200. 
By way of example and not limitation, computer-reada- 
ble media includes communication media and computer 
storage media. 5 
[0026] For example, computer storage media in- 
cludes RAM, ROM, erasable programmable read-only 
memory (EPROM), flash memory and other types of 
memory technology, CD-ROM , digital video disks (DVD) 
and other types of optical storage media, magnetic cas- 
settes, magnetic tape, magnetic disk storage and other 
types of magnetic storage devices, and any other me- 
dium that can be used to store the desired information 
and that is accessible by the computer 200. Further, any 
combinations of the above is also included within the 
meaning of computer-readable media. 
[0027] Numerous program modules may be stored on 
the hard disk, magnetic disk, optical disk, ROM 212 and 
RAM 215 including software and data 227. Software and 
data 227 include, for example, application programs, 
other program modules and program data. A user may 
interact with the computer 200 by entering commands 
and information through other I/O devices 230 such as 
a keyboard and pointing device (such as a mouse). Fur- 
ther, other I/O devices 230 may include, for example, a 
microphone, joystick, game pad, satellite dish, scanner, 
video camera, digital camera, and the like. These and 
other I/O devices 230 may be connected to the central 
processing unit 203 through, for example, a serial port, 
a parallel port, game port or a universal serial bus (USB) 
that is coupled to the system bus 209. A monitor 233 or 
other type of display device is connected to the system 
bus 209 through a video interface 236 (such as a video 
adapter). Further, additional peripheral devices (such as 
speakers and printers) may be connected to the com- 
puter 200. 

[0028] The computer 200 may be operated in a net- 
worked environment using logical connections to one or 
more remote computers (such as a remote computer 
239). The remote computer 239 may be a personal com- 
puter (PC), a server, a router, a network PC, a peer de- 
vice or othertype of network node, and typically includes 
several or all of the elements described above in con- 
nection with the computer 200. Only a memory storage 
device 242 having software and data 245 residing ther- 
eon, however, has been illustrated with the remote com- 
puter 239 in FIG. 2. The logical connections shown in 
FIG. 2 include a local area network (LAN) 248 and a 
wide area network (WAN) 251 , such as, for example, 
the Internet and World-Wide Web (WWW). Such net- 
working environments are commonplace in offices, en- 
terprise-wide computer networks, intranets and the In- 
ternet. 

[0029] If the computer 200 is used in a LAN network- 
ing environment, the computer 200 is coupled to the lo- 
cal network 248 through a network interface 254 (such 
as a network adapter). If the computer 200 is used in a 
WAN networking environment, the computer 200 is gen- 



erally coupled to the WAN (such as the Internet) through 
a modem 257 or other means for establishing commu- 
nications over the WAN (such as a cable modem). 
[0030] In a networked environment, program modules 
depicted relative to the computer 200, or portions there- 
of, may be stored in the remote memory storage device 
242. Further, in a networked environment the execution 
of computer- read able instructions within the program 
modules as well as processing and data manipulation 
may occur on the computer 200, the remote computer 
239, or both. It will be appreciated that the network con- 
nections shown are exemplary and other means of es- 
tablishing a communications link and transferring data 
between the computer 200 and the remote computer 
239 may be used. 

III. System and Operational Details 

[0031] FIG. 3 is a block diagram illustrating the mes- 
saging client, network server and receiving client of the 
present invention. Although not required, the invention 
will be described in the general context of computer-ex- 
ecutable instructions, such as program modules, being 
executed by a computer. These program modules gen- 
erally include routines, programs, objects, components, 
data structures, etc. that perform specific operations or 
implement particular abstract data types. Moreover, 
those skilled in the art will appreciate that the invention 
may be practiced with a variety of computer system con- 
figurations, including personal computers, server com- 
puters, hand-held devices, multiprocessor systems, mi- 
croprocessor-based or programmable consumer elec- 
tronics, network PCs, minicomputers, mainframe com- 
puters, and the like. The invention may also be practiced 
in distributed computing environments where tasks are 
performed by remote processing devices that are linked 
through a network. In a distributed computing environ- 
ment, program modules may be located on both local 
and remote computer storage media including memory 
storage devices. 

[0032] Referring to FIG. 3 along with FIG. 1 , the mes- 
saging client 1 08 of the present invention includes a to- 
ken request module 300, for transmitting the token re- 
quest 156 to the message authentication system 148, 
and a token receiver module 308, for receiving the token 
request 156. The messaging client 108 also includes a 
first ticket generator module 316, which generates a 
ticket, and a message generator module 324, which 
transmits a combined electronic message and generat- 
ed ticket to the network server 132. 
[0033] The message authentication system 148 in- 
cludes a token module 332, which generates authenti- 
cation data used to authenticate the electronic message 
and ticket, and a message module 340, which validates 
the authentication data and approves transmission of 
the message. Preferably, the token module 332 and the 
message module 340 are contained on the network 
server 132, but may, however, alternatively be con- 
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tained on separate servers. 

[0034] The token module 332 includes a confirmation 
module 348 coupled to the token request module 300, 
a token generator module 356 generates a token and 
sends the token to the token receiver module 308 of the 
messaging client 1 08, a second ticket generator module 
364 and a message generator module 324. The mes- 
sage module 340 includes a message and ticket module 
380 coupled to the message generator module 324, a 
non-delivery module 388 and a message delivery mod- 
ule 396. 

[0035] When the messaging client 108 desires to 
send an electronic message through the network server 
132 the token request module 300 sends the token re- 
quest 156 over the network 124. The token request 156 
is received by the confirmation module 348, which vali- 
dates the token request 1 56 and directs the token gen- 
erator module 356 to generate the token 1 64. The token 
1 64 is transmitted to the token receiver module 308 and 
to the first ticket generator module 31 6, which uses the 
token 1 64 to generate a first ticket. The first ticket is at- 
tached to the electronic message by the message gen- 
erator module 324 and the electronic message and tick- 
et 1 72 are sent over the network 1 24 to the message 
module 380. 

[0036] Meanwhile, the token generator module 356 
also sends the token 1 64 to the second ticket generator 
module 364. Using the token 1 64, a second ticket is gen- 
erated that is identical to the first ticket but independent- 
ly and separately generated. The second ticket is sent 
to the valid ticket database module 372 for storage in a 
valid ticket database. The valid ticket database module 
372 is coupled to the message module 340 to provide 
the message module 340 access to the valid ticket da- 
tabase. 

[0037] When the messaging module 340 receives an 
electronic message over the network 1 24, the electronic 
message is sent to the message and ticket module 380 
for authentication. Specifically, if a ticket attached to an 
electronic message matches a ticket in the valid ticket 
database, then the electronic message is authenticated. 
For example, when the electronic message and ticket 
172 is received by the message and ticket module 380 
the attached first ticket is compared to the valid ticket 
database. Because the first ticket matches the second 
ticket in the valid ticket database, the message is au- 
thenticated. 

[0038] If a received electronic message cannot be au- 
thenticated, the message is sent to the non-delivery 
module 388. The non-authenticated message is not 
sent to the receiving client 140, and instead the mes- 
sage may be deleted or other operations (such as writ- 
ing to a security log) are performed. If the message is 
authenticated, the message is sent to the message de- 
livery module 396, which transmits the authenticated 
electronic message 180 over the network 124 to the re- 
ceiving client 140. 

[0039] FIG. 4 is a detailed flow diagram illustrating the 



operation of the present invention. The messaging client 
initiates the transmission of an electronic message by 
sending a token request (box 405) over the network 124 
to the token module 332. Preferably, the token request 

5 1 56 includes an initialization value that is unique to eve- 
ry messaging client 1 08 and known only to the messag- 
ing client and the message authentication system 148 
(such a serial number of the messaging client 1 08). The 
token request 156 provides an initial verification that the 

10 client requesting the token has authority to send an elec- 
tronic message through the network server 132. 
[0040] Upon receiving the token request 41 5 the to- 
ken module generates a token (box 415). In a preferred 
embodiment, the token 1 64 is a random value that is 

is determined using a random number generator. The 
length of the token 164 should be long enough to provide 
security and prevent guessing but short enough to pre- 
vent taxing system resources. In a preferred embodi- 
ment, the token 164 is a random number of at least 

20 256-bit or longer in length. Using a 256 bit or largertoken 
length increases security by ensuring that a duplicate 
token will not be generated, in other words, that each 
token is unique. The token module 332 then sends the 
token 1 64 to the messaging client (box 420) over the 

25 network 124. 

[0041 ] The token 1 64 is received from the token mod- 
ule (box 430) and a first ticket is generated (box 435). 
The first ticket is generated by performing an algorithmic 
manipulation of the initialization value and the token 

30 1 64. For additional security, a preferred embodiment us- 
es a security value that is mutually known by the mes- 
saging client 108 and the message authentication sys- 
tem 148. Preferably, the length of the security value is 
at least 256 bits. Any type of algorithmic manipulation 

35 may be used to discourage the decoding and theft of the 
first ticket. The algorithmic manipulation should only be 
known by the messaging client 108 and the message 
authentication system 1 48. By way of example, the first 
ticket may be generated by scrambling the digits of the 

40 initialization value, the token 1 64 and the security value. 
Once a first ticket has been generated the first ticket is 
attached to the electronic message to be sent (box 440) 
and allows the messaging client 108 to route one mes- 
sage through the network server 132. The electronic 

45 message and ticket 1 72 are then sent (box 445) over 
the network 124 to the message module 340. 
[0042] Meanwhile, the token module 332 generates a 
second ticket (box 455) using the identical algorithmic 
manipulation used in generating the first ticket. Thus, 

50 the first ticket and the second ticket are identical but are 
generated independently and separately. The second 
ticket is stored in a valid ticket database (box 460) and 
the valid ticket database is sent to the message module 
(box 465). Preferably, for additional security, the second 

55 ticket is valid only for a limited time. This means that if 
the second ticket is not used within a certain time period 
(such as from five minutes to one hour) the second ticket 
is removed from the valid ticket database. 
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[0043] The message module 340 receives the elec- 
tronic message and ticket (box 470) along with any other 
messages addressed to the message module 340 and 
sent over the network 1 24. Each received message is 
tested for authenticity by determining whether the at- 5 
tached ticket is valid (box 475). If the message has a 
ticket attached that is not in the valid ticket database, or 
if the message does not have an attached ticket, the 
message is not authenticated and therefore not deliv- 
ered (box 480). The unauthenticated message may be 10 
deleted, stored in a security file, logged in a security log, 
or any other option as determined by a user of the sys- 
tem. 

[0044] If the received message does have an at- 
tached ticket that is in the valid ticket database, the mes- *s 
sage is authenticated. For example, the electronic mes- 
sage and ticket 1 72 has attached the first ticket that 
matches the second ticket located in the valid ticket da- 
tabase. Thus, the electronic message is authenticated. 
Once a message is authenticated, the ticket is removed 20 
from the valid ticket database (box 485) and the corre- 
sponding attached ticket is removed from the message 
(box 490). The authenticated message is then delivered 
to the receiving client 140 by sending the message 
through the network server 132 and over the network 25 
124. 

[0045] The foregoing description of the preferred em- 
bodiments of the invention has been presented for the 
purposes of illustration and description. It is not intended 
to be exhaustive or to limit the invention to the precise 30 
form disclosed. Accordingly, the foregoing description 
should be regarded as illustrative rather than restrictive, 
and it should be appreciated that variations may be 
made in the embodiments described by workers skilled 
in the art without departing from the scope of the present 35 
invention as defined by the following claims. 



Claims 

40 

1 . A method for authenticating an electronic message 
sent by a messaging client (1 08) to a network server 
(132) over a network (124), comprising: 

comparing a first ticket attached to the electron- 45 
ic message (1 72) to a second ticket stored in a 
valid ticket database (460); and 
delivering the electronic message (495) to a re- 
ceiving client if the first ticket is identical to the 
second ticket (475); 50 
wherein the identical first and second tickets 
are generated (435, 455) independently on the 
messaging client (108) and the network server 
(132), respectively. 

55 

2. The method of claim 1 , wherein the first ticket and 
second tickets are generated (435, 455) using the 
same algorithmic manipulation. 



3. The method of claim 2, wherein the algorithmic ma- 
nipulation uses a token (164). 

4. The method of claim 1 , further comprising removing 
the second ticket from the valid ticket database 
(485) if the first and second tickets are identical. 

5. The method of claim 1 , furthercomprising removing 
the first ticket from the electronic message (490) if 
the first and second tickets are identical. 

6. The method of claim 2, wherein the second ticket is 
stored in the valid ticket database (460) for a certain 
time period. 

7. A message authentication system (1 48) for authen- 
ticating an electronic message sent to a network 
server (132) over a network (124), comprising: 

a messaging client (1 08) at a remote location 
that generates a first ticket (435) and attaches 
the first ticket to the electronic message (440); 
a token module (332) that generates a second 
ticket (455) that is stored in a valid ticket data- 
base (460); and 

a message module (340) that compares the 
first and second tickets and authenticates the 
electronic message if the first and second tick- 
ets are identical (475). 

8. The message authentication system (1 48) of claim 

7, wherein the token module (332) comprises a to- 
ken generator module (356) that generates a token. 

9. The message authentication system (1 48) of claim 

8, wherein the token is used by a first ticket gener- 
ator module (316), located on the messaging client 
(1 08), to generate the first ticket and a second ticket 
generator module (364), located on the token mod- 
ule (332), to generate the second ticket. 

10. The message authentication system (148) of claim 
7, furthercomprising a valid ticket database module 
(372) that stores the second ticket in the valid ticket 
database for only a limited time period. 

11. The message authentication system (148) of claim 
7, wherein the message module (340) further com- 
prises a message delivery module (396) that deliv- 
ers the authenticated electronic message (180) to 
a receiving client (140). 

12. The message authentication system (148) of claim 
11, wherein the message delivery module (396) 
separates the first ticket from the electronic mes- 
sage (490) and removes the second ticket from the 
valid ticket database (485). 
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